Malware writers spoof Firefox plug-in

**barman58** · 05 Dec 2008

Malware writers spoof Firefox plug-in

A virulent new attack on Mozilla's Firefox browser is setting off alarms in the security world.
Researchers from BitDefender said that the new attack exploits a browser plug-in. The malware reportedly disguises itself as Greasemonkey, a plug-in which allows users to write and execute custom scripts to add or augment web page data.

Full Story ...

Malware writers spoof Firefox plug-in - vnunet.com

**stormy13** · 05 Dec 2008

Wonder if this one has an affect in FF on a Linux system?

**barman58** · 05 Dec 2008

Hi Stormy,

Technically I think it could If it runs in the browser (as java) and looks for files on the disk (cookies?) containing banking information, and probably would not need any elevated privilege, It would be platform independent.

Of course I could be wrong, and I'm sure someone will inform me if I am

but if my assumptions above are correct could well be a potential problem, especially as Linux users rarely protect against attacks as most are aimed at windows system files.

**stormy13** · 05 Dec 2008

That is my thinking as well. Just imagine the hand-wringing from the Linux camp if that turns out to be the case.

**Airbot** · 05 Dec 2008

I wonder if having having NoSpript picks up on this?

**barman58** · 05 Dec 2008

It's an interesting point with the likes of MAC and Linux that If and When their market share increases to a certain level they will then gain the attention of the people ( or can I say Scum here) that write malware. It will maybe then show us if these other operating systems are as virus proof as they are purported to be. Hopefully they are as good as they think, I'm not someone who would like to see anyone suffer because of their personal choice of an OS, but only time will tell

**barman58** · 05 Dec 2008

hi Airbot,

The thing is that NoScript will stop all script activity but if you think that you have installed a scripting application you are likely to allow its activity to work, therefore opening up the system to the spoof version of the application.

After all it's the way that a lot of malware gets onto a system it tricks the weakest link in the system, the human being, into letting it in, by pretending to be something that the user wants.

**Airbot** · 05 Dec 2008

Yeah, true. Now it disquises itself as the greasemonkey add on or a written script for it?

**dinesh** · 05 Dec 2008

May be firefox will be updated as a final release till the time the malware comes out.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Sneaky Microsoft plug-in puts Firefox users at risk.	JMH	System Security	4	19 Oct 2009
Mozilla blocks Microsoft's sneaky Firefox plug-in.	JMH	System Security	0	19 Oct 2009
Hilarious spoof	Curt	Vista General	3	18 Jan 2008
Firefox plug-in for windows media player	Mary Ellen	Vista General	1	16 Nov 2007
Reboots due to CD/DVD writers?	M J Bartmon	Vista General	1	08 Dec 2006

Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Re: Malware writers spoof Firefox plug-in

Posting Permissions